$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E35DA07B114BD42901F7C1DB8E684E995E2E4433.cer File: E35DA07B114BD42901F7C1DB8E684E995E2E4433.cer (raw, json) Hash identifier: mmUzh1ouQDdkgnvYRyqybo0NVylGrUFdFhMu/ccZQVs= Subject key identifier: E3:5D:A0:7B:11:4B:D4:29:01:F7:C1:DB:8E:68:4E:99:5E:2E:44:33 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4F3ED965D309F3CA7CB5ABA329C3386B1596089A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0/E35DA07B114BD42901F7C1DB8E684E995E2E4433.mft caRepository: rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 27 Jul 2023 20:23:31 +0000 Certificate not after: Thu 25 Jul 2024 20:28:31 +0000 Subordinate resources: IP: 103.173.140.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:3e:d9:65:d3:09:f3:ca:7c:b5:ab:a3:29:c3:38:6b:15:96:08:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 27 20:23:31 2023 GMT Not After : Jul 25 20:28:31 2024 GMT Subject: CN=E35DA07B114BD42901F7C1DB8E684E995E2E4433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4a:6c:b5:07:0f:3a:78:8f:13:d4:bf:0c:07: 0e:a7:56:0b:ab:ca:4f:71:73:7a:54:53:2d:30:2b: 21:dc:df:39:f5:d5:bd:8f:b4:8e:7d:68:1c:b1:ef: 7b:c4:f0:55:58:06:7e:96:3a:14:de:21:bc:88:57: ff:83:62:37:15:5a:ed:ea:8b:e3:07:c1:da:ea:1b: 05:7a:13:cd:65:4a:5d:46:78:64:63:93:9e:b8:70: a3:13:f6:3f:38:70:81:75:3e:cf:1a:ea:83:6e:f6: ca:f2:fe:ff:ab:d6:b1:56:d6:75:98:3d:09:12:0b: 49:78:4f:d6:24:ab:ae:5b:75:17:0e:26:24:26:8f: 3b:22:ee:13:6e:61:6a:57:dc:6a:76:36:84:c3:08: e8:45:14:af:b1:5f:33:3c:d7:06:6a:5f:70:8b:f5: 21:f5:84:7a:f5:e0:55:ec:22:92:c8:e7:f1:d1:9d: bb:b7:44:5f:6e:bd:7b:03:58:f8:ce:4d:3b:ea:10: 1b:73:29:bb:bd:0c:b7:26:d0:24:6a:73:b4:0d:8d: e3:87:0d:af:dc:42:a8:2e:07:30:86:9e:47:8a:05: bc:91:96:e9:77:66:69:69:29:f9:b0:26:3b:28:88: 4e:17:e7:82:28:e6:e6:6e:4a:fa:a2:18:48:a1:ce: f0:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E3:5D:A0:7B:11:4B:D4:29:01:F7:C1:DB:8E:68:4E:99:5E:2E:44:33 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0/E35DA07B114BD42901F7C1DB8E684E995E2E4433.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.140.0/23 Signature Algorithm: sha256WithRSAEncryption 06:b5:66:f6:74:0d:2e:fe:77:c7:fa:00:47:82:5d:8b:06:0a: 7d:8b:d7:e9:dc:22:a5:1a:41:cc:ef:97:f2:84:f3:6e:88:c6: df:d8:12:64:10:5b:5e:b1:71:c6:4d:01:09:b7:6a:1d:ba:16: dd:ba:54:70:8a:21:32:5d:f2:4b:a0:e5:69:64:94:01:f0:95: 74:d2:66:3c:64:dd:da:2a:74:7a:d7:64:50:ad:9d:25:40:48: e4:99:ad:63:68:2d:34:78:51:2a:fd:b2:36:35:64:ab:b9:81: 4f:5b:c5:8d:f7:30:2e:a7:71:39:2e:3d:a0:e0:ea:82:53:f8: 53:e9:6e:c7:36:d9:40:6e:a6:9b:85:c8:63:c6:fa:d6:de:44: 80:65:03:87:7a:2a:6e:da:b0:2b:0b:39:9a:a0:56:6e:ef:47: 0f:60:fb:e2:82:7f:eb:39:58:bf:d8:96:72:5f:4f:0f:b6:c7: bb:09:76:d1:fd:a2:ab:8b:cf:ce:cf:59:17:63:97:48:7e:8a: 86:74:ff:19:3b:21:26:19:55:95:94:20:4d:d2:65:f7:f8:2f: 87:4d:67:ee:5a:38:d7:76:5d:4e:69:08:2f:f1:c9:f1:20:e7: b7:b1:3b:84:96:05:09:d6:7c:bb:a2:5e:7c:72:f0:93:2c:45: be:d6:ed:8a -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUTz7ZZdMJ88p8taujKcM4axWWCJowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcyNzIwMjMzMVoX DTI0MDcyNTIwMjgzMVowMzExMC8GA1UEAxMoRTM1REEwN0IxMTRCRDQyOTAxRjdD MURCOEU2ODRFOTk1RTJFNDQzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1KbLUHDzp4jxPUvwwHDqdWC6vKT3FzelRTLTArIdzfOfXVvY+0jn1oHLHv e8TwVVgGfpY6FN4hvIhX/4NiNxVa7eqL4wfB2uobBXoTzWVKXUZ4ZGOTnrhwoxP2 PzhwgXU+zxrqg272yvL+/6vWsVbWdZg9CRILSXhP1iSrrlt1Fw4mJCaPOyLuE25h alfcanY2hMMI6EUUr7FfMzzXBmpfcIv1IfWEevXgVewiksjn8dGdu7dEX269ewNY +M5NO+oQG3Mpu70MtybQJGpztA2N44cNr9xCqC4HMIaeR4oFvJGW6XdmaWkp+bAm OyiIThfngijm5m5K+qIYSKHO8FsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFONdoHsRS9QpAffB245oTpleLkQzMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hYWFiYjU3OC1iOWRiLTRhNDctOGQ3ZS0xMWE2MzQyODkwMTgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhYWJiNTc4 LWI5ZGItNGE0Ny04ZDdlLTExYTYzNDI4OTAxOC8wL0UzNURBMDdCMTE0QkQ0Mjkw MUY3QzFEQjhFNjg0RTk5NUUyRTQ0MzMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnrYwwDQYJKoZIhvcNAQELBQADggEBAAa1ZvZ0DS7+d8f6AEeCXYsGCn2L1+nc IqUaQczvl/KE826Ixt/YEmQQW16xccZNAQm3ah26Ft26VHCKITJd8kug5WlklAHw lXTSZjxk3doqdHrXZFCtnSVASOSZrWNoLTR4USr9sjY1ZKu5gU9bxY33MC6ncTku PaDg6oJT+FPpbsc22UBuppuFyGPG+tbeRIBlA4d6Km7asCsLOZqgVm7vRw9g++KC f+s5WL/YlnJfTw+2x7sJdtH9oquLz87PWRdjl0h+ioZ0/xk7ISYZVZWUIE3SZff4 L4dNZ+5aONd2XU5pCC/xyfEg57exO4SWBQnWfLuiXnxy8JMsRb7W7Yo= -----END CERTIFICATE-----Generated at Wed May 8 05:33:24 2024 by rpki-client on console-ams.rpki-client.org